Home page logo

funsec logo funsec mailing list archives

CVE-2013-1196 details?
From: Jeffrey Walton <noloader () gmail com>
Date: Sun, 2 Jun 2013 18:35:48 -0400

Hi All,

Below is CVE-2013-1196. Does anyone know anything about the unknown vectors?

Was this a confused deputy that executed commands it received as root?


The command-line interface in Cisco Secure Access Control System
(ACS), Identity Services Engine Software, Context Directory Agent,
Application Networking Manager (ANM), Prime Network Control System,
Prime LAN Management Solution (LMS), Prime Collaboration, Unified
Provisioning Manager, Network Services Manager, Prime Data Center
Network Manager (DCNM), and Quad does not properly validate input,
which allows local users to obtain root privileges via unspecified
vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406,
CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422,
CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.
Fun and Misc security discussion for OT posts.
Note: funsec is a public and open mailing list.

  By Date           By Thread  

Current thread:
  • CVE-2013-1196 details? Jeffrey Walton (Jun 02)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]